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ABSTRACT 



A system for restricting access to transmitted programming 
content is disclosed, which transmits the encryption key 
used to encrypt the program to the customer with the 
encrypted programming content. A set- top terminal or simi- 
lar mechanism restricts access to the transmitted multimedia 
information using stored decryption keys. The set-top ter- 
minal preferably receives one or more package keys, S 7 , 
periodically from the service provider, each corresponding 
to a package of programs that the customer is entitled to for 
a given period. Each program is preferably encrypted by the 
head-end server prior to transmission using a program key, 
K py which may be unique to the program. Header informa- 
tion is transmitted with the encrypted program to the 
customers, containing a package pair for each package to 
which the program belongs. A package pair preferably 
includes an identifier of the package, as well as the program 
key, Kp, encrypted by the corresponding package key, Sj. 
The broadcast of a given program, p, preferably consists of 
a header portion containing a package pair for each package 
that the program belongs to, and a program portion contain- 
ing the program encrypted with the program key, K P . If a 
customer is entitled to a particular program, the set-lop 
terminal will be able to decrypt the encrypted program key, 
Kp, using an appropriate stored package key, S^, and there- 
after use the program key, K F , to decrypt the encrypted 
program. The header information can be interleaved with the 
program portion or transmitted on a separate dedicated 
control channel. 

28 Claims, 9 Drawing Sheets 
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CRYPTOGRAPHIC METHOD AND 
APPARATUS FOR RESTRICTING ACCESS 

TO TRANSMITTED PROGRAMMING 
CONTENT USING EXTENDED HEADERS 

FIELD OF THE INVENTION 

The present invention relates generally to a system for 
restricting access to transmitted programming content, and 
more particularly, to a system for transmitting an encrypted 
program together with the encryption key used to encrypt 
the program. 

BACKGROUND OF THE INVENTION 

As the number of channels available to television viewers 
has increased, along with the diversity of the programming 
content available on such channels, it has become increas- 
ingly challenging for service providers, such as cable tele- 
vision operators and digital satellite service operators, to 
offer packages of channels and programs that satisfy the 
majority of the television viewing population. The develop- 
ment of packages that may be offered to customers is 
generally a marketing function. Generally, a service provider 
desires to offer packages of various sizes, from a single 
program to all the programs, and various combinations in 
between. 

The service provider typically broadcasts the television 
programs from a transmitter, often referred to as the "head- 
end," to a large population of customers. Each customer is 
typically entitled only to a subset of the received 
programming, associated with purchased packages. In a 
wireless broadcast environment, for example, the transmit- 
ted programming can be received by anyone with an appro- 
priate receiver, such as an antenna or a satellite dish. Thus, 
in order to restrict access to a transmitted program to 
authorized customers who have purchased the required 
package, the service provider typically encrypts the trans- 
mitted programs and provides the customer with a set-top 
terminal (STT) containing one or more decryption keys 
which may be utilized to decrypt programs that a customer 
is entitled to. In this manner, the set-top terminal receives 
encrypted transmissions and decrypts the programs that the 
customer is entitled to, but nothing else. 

In order to minimize piracy of the highly sensitive infor- 
mation stored in the set-top terminals, including the stored 
decryption keys, the set-top terminals typically contain a 
secure processor and secure memory, typically having a 
capacity on the order of a few kilobits, to store the decryp- 
tion keys. The secure memory is generally non-volatile, and 
tamper- resistant. In addition, the secure memory is prefer- 
ably writable, so that the keys may be reprogrammed as 
desired, for example, for each billing period. The limited 
secure memory capacity of conventional set- top terminals 
limits the number of keys that may be stored and thereby 
limits the number of packages which may be offered by a 
service provider. It is noted that the number of programs 
typically broadcast by a service provider during a monthly 
billing period can be on the order of 200,000. 

In one variation, conventional set-top terminals contain a 
bit vector having a bit entry corresponding to each package 
of programs offered by the service provider. Typically, each 
package corresponds to one television channel If a particu- 
lar customer is entitled to a package, the corresponding bit 
entry in the bit vector stored in the set-top terminal is set to 
one ("1"). Thereafter, all programs transmitted by the ser- 
vice provider are encrypted with a single key. Upon receipt 
of a given program, the set-top terminal accesses the bit 
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vector to determine if the corresponding bit entry has been 
set. If the bit entry has been set, the set-top terminal utilizes 
a single stored decryption key to decrypt the program. 
While, in theory, flexibility is achieved in the bit vector 

s scheme by providing a bit entry for each program, the length 
of the bit vector would be impractical in a system transmit- 
ting many programs in a single billing period. In addition, 
access control in such a system is provided exclusively by 
the entries in the bit vector and is not cryptographic. Thus, 

10 if a customer is able to overwrite the bit vector, and set all 
bits to one ("1"), then the customer obtains access to all 
programs. 

In a further variation, programs are divided into packages, 
and all programs in a given package are encrypted using the 

15 same key. Again, each package typically corresponds to one 
television channel. The set-top terminal stores a decryption 
key for each package the customer is entitled to. Thus, if a 
program is to be included in a plurality of packages, then the 
program must be retransmitted for each associated package, 

20 with each transmission encrypted with the encryption key 
corresponding to the particular package. Although the access 
control is cryptographic, the overhead associated with 
retransmitting a given program a number of times discour- 
ages service providers from placing the same program in a 

25 number of packages and thereby limits flexibility in design- 
ing packages of programs. 

While such previous systems for encrypting and trans- 
mitting programming content have been relatively success- 

30 ful in restricting access to authorized customers, they do not 
permit a service provider, such as a television network, to 
offer many different packages containing various numbers of 
programs to customers, without exceeding the limited secure 
memory capacity of the set- top terminal. As apparent from 

3S the above-described deficiencies with conventional systems 
for transmitting encrypted programming content, a need 
exists for a system for transmitting a program encrypted 
with a unique key, together with the unique key used to 
encrypt the program. A further need exists for a system that 

4Q permits a service provider to include a program in a plurality 
of packages, without requiring the service provider to 
retransmit the program for each package. Yet another need 
exists for an access control system that overcomes the secure 
memory limitations of the set-top terminal without signifi- 

45 cantly increasing the overhead associated with the transmit- 
ted programming content. 

SUMMARY OF THE INVENTION 

Generally, encrypted programming content is transmitted 

50 by a service provider using a transmitter, or he ad -end server, 
to one or more customers. According to one aspect of the 
invention, the encryption key used to encrypt the program is 
transmitted to the customer with the programming content. 
Each customer preferably has a set-top terminal or another 

ss mechanism to restrict access to the transmitted multimedia 
information using decryption keys. According to a further 
aspect of the invention, the set-top terminal preferably 
receives one or more package keys, S y , periodically from the 
head-end, each corresponding to a package of programs that 

60 the customer is entitled to for a given period. 

Each program is preferably encrypted by the head-end 
server prior to transmission, using a program key, K P , which 
may be unique to the program. In addition to transmitting the 
encrypted program, the head-end server preferably transmits 

65 header information to the customers, containing a package 
pair for each package to which the program belongs. A 
package pair preferably includes an identifier of the package, 
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as well as the program key, Kp, encrypted by the corre- FIG. 4, intermittently receives one or more package keys, S,, 

sponding package key, S y . Thus, in one embodiment, the from the head-end server 300, discussed further below in 

broadcast of a given program, p, consists of a header portion conjunction with FIG. 3, each corresponding to a package 

containing a package pair for each package that the program that the customer is entitled to for a given time interval, such 

belongs to, and a program portion containing the program s as a billing period. As used herein, a package is a predefined 

encrypted with the program key, Kp. In this manner, if a sel ° f programs, and a given program can belong to one or 

customer is entitled to a particular program, the set-top more packages A program is any continuous multimedia 

terminal will be able to decrypt the encrypted program key, transmission of a particular length, such as a television 

Kp> using the appropriate stored package key, S J( and 'P™** ™ * P J ' ? \ 

thereafter use the program key, K P , to decrypt the encrypted 10 ^ from ^ ^ad-end server 300 to the set-top terminal 

program. In various embodiments, the header information *?» V sin S any suitably secure uni-duectional o r 

can be interleaved with the program portion or transmitted fri-directional protocol, as would be apparent to a person of 

on a separate dedicated control channel. * or nar ^ s 

, , t en . • As discussed further below, each transmitted program is 

A more complete understanding or the present invention, , , , . u u a a inn ° i 

„ *i j j * * .t_ K encrypted by the headend server 300 using a program key, 

as well as further features and advantages of the present «. , . . . . . r- j * -i j 

... . * . j i c . r 11 Kp, which may be unique to the program. For a detailed 

invention will be obtained by reference to the Mowing of encryption and security techniques, 

detailed descnption and drawmgs. ^ g Schneier> AppJied <^p\ ogra p h y (2d e d. 1997), incor- 

BRIEF DESCRIPTION OF THE DRAWINGS porated by reference herein. In addition to transmitting the 

20 encrypted program, the head-end server 300 also transmits 

FIG. 1 is a schematic block diagram illustrating a system header information to the set-top terminals 400, containing 

for transmitting encrypted programming content in accor- a package pair for each package to which the program 

dance with one embodiment of the pres*ent invention; belongs. A package pair includes an identifier of the 

FIG. 2 is an example of the data format of an encrypted package, as well as the program key, K P , encrypted by the 

program together with a package pair for each package the 25 corresponding package key, S y . 

program belongs to, containing the encryption key used to Thus, as shown in FIG. 2, the broadcast of a given 

encrypt the program; program, p, consists of a header portion 210 containing a 

FIG. 3 is a schematic block diagram of an exemplary package pair 230 for each package that the program belongs 

head-end server of FIG. 1; to, and a program portion 220 containing the program 

FIG. 4 is a schematic block diagram of an exemplary 30 encrypted with the program key, K^. In this manner, if a 

receiver of FIG 1* customer is entitled to a particular program, the set-top 

FIG. 5 illustrates a sample table from the program data- , termi ° al 400 ^ be able to ^ypt the encrypted program 

base of FIG 4' ^ ^ usm & tne appropriate stored package key, S,, and 

' thereafter use the program key, Kp, to decrypt the encrypted 

35 program. 

, . , * . ., FIG. 3 is a block diagram showing the architecture of an 

FIG. 7 illustrates a sample table from the entitlement illustrative head . end ^rver 300. The head end may be 

database of FIG. 5; associated with a television network, a cable operator, a 

FIG. 8 is a flow chart describing an exemplary transmit sale iHt e service operator, or any service provider 

process as implemented by the head-end server of FIG. 3; 4Q transmitting encrypted programming content. The head-end 

and server 300 may be embodied, for example, as an RS 6000 

FIGS. 9a and 9b, collectively, are a flowchart describing server, manufactured by IBM Corp., as modified herein to 

an exemplary decode process as implemented by the execute the functions and operations of the present inven- 

receiver of FIG. 4. tion. The head-end server 300 preferably includes a proces- 

r.c^ATi cn nccrDTDTinM 45 sor 310 and related memory, such as a data storage device 

DETAILED DbSCRlFIlON 32Q ^ proce&sor 310 may be embodied as a single 

FIG. 1 shows an illustrative network environment for processor, or a number of processors operating in parallel, 
transferring encrypted multimedia information, such as The data storage device 320 and/or a read only memory 
video, audio and data, from a service provider using a (ROM) are operable to store one or more instructions, which 
transmitter, such as a head-end server 300, to one or more 50 the processor 310 is operable to retrieve, interpret and 
customers having set-top terminals 400-401, such as the execute. Tne processor 310 preferably includes a control 
set-top terminal 400, over one or more distribution networks unit, an arithmetic logic unit (ALU), and a local memory 
110. As used herein, a set-top terminal includes any mecha- storage device, such as, for example, an instruction cache or 
nism to restrict access to the transmitted multimedia infor- a plurality of registers, in a known manner. The control unit 
mation using decryption keys, including, for example, a 55 is operable to retrieve instructions from the data storage 
computer configuration, as well as telecommunications device 320 or ROM. The ALU is operable to perform a 
equipment. It is possible for software executed by the set-top plurality of operations needed to carry out instructions. The 
terminal to be downloaded by the service provider. The local memory storage device is operable to provide high- 
distribution network 110 can be a wireless broadcast net- speed storage used for storing temporary results and control 
work for distribution of programming content, such as a 60 information. 

digital satellite service ("DSS™"), or a conventional wired As discussed further below in conjunction with FIGS. 5 

network, such as the cable television network ("CATV"), the and 6, the data storage device 320 preferably includes a 

Public Switched Telephone Network ("PSTN"), an optical program database 500 and a package database 600. The 

network, a broadband integrated services digital network program database 500 preferably stores information on each 

("ISDN") or the Internet. 65 program, p, which will be transmitted by the head-end server 

According to a feature of the present invention, the set-top 300, for example, during a given billing period, including 

terminal 400, discussed further below in conjunction with the packages the program belongs to and the corresponding 



FIG. 6 illustrates a sample table from the package data 
base of FIG. 4; 
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program key, K P . The package database 600 preferably dated with a different entitled package. For each package 
stores information on each package offered by the head-end identified by a package identifier in field 725, the entitlement 
server 300 to customers, including the name of each package database 700 includes an indication of the corresponding 
and the corresponding package key, Sj. package key, S y , in field 735. 

In addition, as discussed further below in conjunction 5 As discussed above, the head-end server 300 preferably 
with FIG. 8, the data storage device 320 preferably includes executes a transmit process 800, shown in FIG. 8, to identify 
a transmit process 800. Generally, the transmit process 800 the program key, K F , of a given program and the packages 
identifies the program key, Kp, of a given program and the that the program belongs to, in order to generate the package 
packages that the program belongs to, in order to generate pairs to be transmitted along with the encrypted program. It 

the package pairs to be transmitted along with the encrypted 10 is noted that the transmit process 800, other than the actual 
program. The communications port 330 connects the head- transmission step, can be executed offline or in real-time. As 
end server 300 to the distribution network 110, thereby illustrated in FIG. 8, the transmit process 800 begins the 
linking the head-end server 300 to each connected receiver, processes embodying the principles of the present invention 
such as the set-top terminal 400 shown in FIG. 1. during step 810 by identifying a program to be transmitted. 

FIG. 4 is a block diagram showing the architecture of an 15 Thereafter, during step 820, the transmit process 800 
illustrative set-top terminal 400. The set- top terminal 400 retrieves the program key, K F , corresponding to the program 
may be embodied, for example, as a set-top terminal (STT) and the list of packages to which the program belongs from 
associated with a television, such as those commercially the program database 500. For each package the program 
available from General Instruments Corp., as modified belongs to, the transmit process 800 will then retrieve the 

herein to execute the functions and operations of the present 20 package identifier and the corresponding package key, S^, 
invention. The set-top terminal 400 preferably includes a from the package database 600, to generate a package pair 
processor 410 and related memory, such as a data storage to be included in the transmitted header information, 
device 420, as well as a communication port 430, which The program will then be encrypted during step 840 with 
operate in a similar manner to the hardware described above the program key, K P> retrieved during step 820. Finally, the 

in conjunction with FIG. 3. 25 transmit process 800 will transmit the encrypted program 

As discussed further below in conjunction with FIG. 7, together with the set of package pairs during step 850, before 
the data storage device 420 preferably includes an entitle- program control terminates during step 860. It is noted that 
ment database 700. The entitlement database 700 is prefer- the header information containing the package pairs are 

ably stored in a secure portion of the data storage device 420. 3Q preferably transmitted periodically interleaved throughout 
The entitlement database 700 preferably stores a package the transmission of the program information, so that a 
identifier and the corresponding package key, S y , for each customer can change channels during a program and be able 
package that the customer is entitled to. In addition, as to obtain the transmitted keys which are required to decrypt 
discussed further below in conjunction with FIGS. 9a and the program. The overhead incurred by periodically trans- 

9b j the data storage device 420 preferably includes a decode 35 mitting the header information should be balanced against 
process 900. Generally, the decode process 900 decrypts the delay a customer will incur after changing a channel until 
programs that a customer is entitled to, by using the corre- the required decryption keys are obtained. In an alternate 
sponding stored package key, S v , to decrypt the transmitted embodiment, the header information containing the package 
program key, K P , and then using the program key, K F , to pairs can be continuously transmitted on a separate control 

decrypt the program. 4Q channel, such as a Barker channel. 

FIG. 5 illustrates an exemplary program database 500 that As discussed above, the set-top terminal 400 preferably 
preferably stores information on each program, p, which will executes a decode process 900, shown in FIGS. 9a and 9b, 
be transmitted by the bead-end server 300, for example, to decrypt programs that a customer is entitled to, by using 
during a given billing period, including the packages the the corresponding stored package key, S^, to decrypt the 

program belongs to and the corresponding program key, K P . 45 transmitted program key, Kp, and then using the program 
The program database 500 maintains a plurality of records, key, K P , to decrypt the program. As illustrated in FIG. 9a t 
such as records 505-520, each associated with a different the decode process 900 begins the processes embodying the 
program. For each program identified by program name in principles of the present invention during step 910, upon 
field 525, the program database 500 includes an indication receipt of a customer instruction to tune to a particular 

of the corresponding packages to which the program belongs 50 channel. 

in field 530 and the corresponding program key, Kp, in field Thereafter, the set-top terminal . 400 will tune to the 
535. requested channel during step 920 to receive the appropriate 

FIG. 6 illustrates an exemplary package database 600 that signal. The decode process 900 then retrieves the transmitted 
preferably stores information on each package offered by the package pairs during step 930 for the program transmitted 

head-end server 300 to customers,, including the name of 55 on the requested channel. A test is then performed during 
each package and the corresponding package key, S y . The step 940 to determine if the customer is entitled to a package 
package database 600 maintains a plurality of records, such containing the requested program. For example, the decode 
as records 605-640, each associated with a different pack- process 900 will determine if a package identifier from one 
age. For each package identified by a package identifier in of the package pairs retrieved during step 930 matches a 

field 650, the package database 600 includes an indication of g 0 package identifier stored in the entitlement database 700. 
the corresponding package name in field 660 and the cor- If it is determined during step 940 that the customer is not 
responding package key, S y , in field 670. entitled to entitled to a package containing the requested 

FIG. 7 illustrates an exemplary entitlement database 700 program, then a message is preferably transmitted to the 
that preferably stores a package identifier and the corre- customer during step 950 indicating that the customer is not 

sponding package key, S 7) for each package that the cus- 65 entitled to view the selected program, before program con- 
tomer is entitled to. The entitlement database 700 maintains trol terminates during step 960. If, however, it is determined 
a plurality of records, such as records 710-720, each asso- during step 940 that the customer is entitled to a package 
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containing the requested program, then program control 
proceeds to step 970 (FIG. 9b). 

If the customer is entitled to view the requested program, 
then the decode process 900 retrieves the package key, S,, 
corresponding to the entitled package from the entitlement 5 
database 700 during step 970 and then uses the retrieved 
package key, S Jt during step 980 to decrypt the transmitted 
program key included in the transmitted header information, 
or on a separate control channel. Finally, the program itself 
is decrypted during step 990 using the program key, K^, 10 
during step 990, before program control terminates during 
step 995. 

It is noted that the decode process 900 can wait for the 
customer to request a particular channel before attempting to 
obtain the transmitted decryption keys and determine 15 
whether the customer is entitled to the requested channel, as 
described above, or the decode process 900 can alternatively 
periodically scan all channels to obtain the transmitted 
package pairs for storage in the data storage device 420 and 
predetermine the customer's entitlement. 20 

It is to be understood that the embodiments and variations 
shown and described herein are merely illustrative of the 
principles of this invention and that various modifications 
may be implemented by those skilled in the art without 25 
departing from the scope and spirit of the invention. 

I claim: 

1. A method of transmitting a plurality of programs having 
restricted access to an end -user, said method comprising the 
steps of: 30 

defining a plurality of packages, each package comprising 
at least one of said programs; 

providing a package key to said end-user for each package 
obtained by said end-user; 

encrypting a program to be transmitted to said end-user 35 
using a program key; and 

transmitting said encrypted program together with pack- 
age information for each package said program belongs 
to, said package information including said program 
key encrypted with said package key. 40 

2. The method according to claim 1, wherein said package 
information further comprises an identifier of said associated 
package. 

3. The method according to claim 1, wherein said package 
information is interleaved with the transmission of said 45 
encrypted program. 

4. The method according to claim 1, wherein said package 
information is transmitted on a control channel. 

5. A method of transmitting a program associated with at 
least one package of programs to a plurality of customers, 50 
said method comprising the steps of: 

providing a package key to each of said customers for 
each package obtained by said customer; 

identifying said packages associated with said program; 5S 

encrypting said program to be transmitted to said custom- 
ers using a program key; and 

transmitting said encrypted program together with pack- 
age information for each identified package, said pack- 
age information including said program key encrypted 60 
with said package key. 

6. The method according to claim 5, wherein said package 
information further comprises an identifier of said associated 
package. 

7. The method according to claim 5, wherein said package 65 
information is interleaved with the transmission of said 
encrypted program. 
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8. The method according to claim 5, wherein said package 
information is transmitted on a control channel. 

9. A method of transmitting a program associated with at 
least one package of programs to a plurality of customers, 
said method comprising the steps of: 

providing a package key to each of said customers for 

each package obtained by each of said customers; 
encrypting said program using a program key; and 
transmitting said program key with said encrypted pro- 
gram to said customers, said transmitted program key 
encrypted with said package key corresponding to a 
package containing said program. 

10. The method according to claim 9, wherein said 
program key is transmitted encrypted with a package key for 
each package said program is associated with. 

11. The method according to claim 9, further comprising 
the step of transmitting one or more package keys to each 
customer, each package key corresponding to a package of 
programs said customer is entitled to. 

12. The method according to claim 9, wherein said 
program key is interleaved with the transmission of said 
encrypted program. 

13. The method according to claim 9, wherein said 
program key is transmitted on a control channel. 

14. A method for decoding an encrypted program asso- 
ciated with a package of programs, said method comprising 
the steps of: 

receiving said encrypted program together with package 
information, said package information including a pro- 
gram key encrypted with a package key, said program 
key being used by a provider of said program to encrypt 
said program; 

retrieving a package key corresponding to said package; 
decrypting said package information using said retrieved 

package key to obtain said program key; and 
decrypting said encrypted program using said program 

key. 

15. The method according to claim 14, further comprising 
the step of receiving one or more package keys from said 
provider, each package key corresponding to a package of 
programs a customer is entitled to. 

16. The method according to claim 14, wherein said 
package information further comprises an identifier of said 
associated package. 

17. The method according to claim 14, wherein said 
package information is interleaved with the transmission of 
said encrypted program. 

18. The method according to claim 14, wherein said 
package information is transmitted on a control channel. 

19. The method according to claim 14, wherein said 
package information is evaluated upon a request to view said 
program. 

20. The method according to claim 14, wherein said 
package information is evaluated in advance of a request to 
view said program. 

21. A method of receiving an encrypted program having 
restricted access, said method comprising the steps of: 

storing a package key corresponding to each package of 
said programs which said customer is entitled to; 

receiving said encrypted program together with package 
information, said package information including a pro- 
gram key encrypted with said package key, said pro- 
gram key being used by a provider of said program to 
encrypt said program; 

decrypting said package information using said retrieved 
package key to obtain program key; and 
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decrypting said encrypted program using said program 
key. 

22. The method according to claim 21, wherein said 
package information further comprises an identifier of said 
associated package. s 

23. The method according to claim 21, wherein said 
package information is interleaved with the transmission of 
said encrypted program. 

24. The method according to claim 21, wherein said 
package information is transmitted on a control channel. 10 

25. The method according to claim 21, wherein said 
package information is evaluated when said customer 
requests to view said program. 

26. The method according to claim 21, wherein said 
package information is evaluated in advance of said cus- 15 
tomer requesting to view said program. 

27. An article of manufacture comprising: 

a computer readable medium having computer readable 
code means embodied thereon, said computer readable 
program code means comprising: 20 
a step to identify one or more packages associated with 

a program to be transmitted, each of said packages 

having an associated package key; 



a step to encrypt said program to be transmitted to a 
plurality of customers using a program key; and 

a step to transmit said encrypted program together with 
package information for each identified package, 
said package information including said program 
key encrypted with said package key. 
28, An article of manufacture comprising: 
a computer readable medium having computer readable 

code means embodied thereon, said computer readable 

program code means comprising: 

a step to receive an encrypted program together with 
package information, said package information 
including a program key encrypted with a package 
key, said program key being used to encrypt said 
program; 

a step to retrieve said package key corresponding to a 
package to which said encrypted program belongs; 

a step to decrypt said package information using said 
retrieved package key to obtain said program key; 
and 

a step to decrypt said encrypted program using said 
program key. 
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UNITED STATES PATENT AND TRADEMARK OFFICE 

CERTIFICATE OF CORRECTION 



PATENT NO. : 6,073,122 Page 1 of 3 

DATED : June 6, 2000 

INVENTOR(S) : Avishai Wool 



It is certified that error appears in the above- identified patent and that said Letters Patent is 
hereby corrected as shown below: 



Column 7, 

Line 27 through line 40, replace claim 1 with the following claim: 

1. A method of transmitting a plurality of programs having restricted access to an 

end-user, said method comprising the steps of: 

defining a plurality of packages, each package comprising at least one of said 

programs; 

providing a package key to said end-user for each package obtained by said 

end-user; 

encrypting a program to be transmitted to said end-user using a program 

key; and 

transmitting said encrypted program together with package information for each 
package said program belongs to, said package information including said program key 
encrypted with said package key that is unique for said corresponding package containing said 
program. 

Line 49 through line 61, replace claim 5 with the following claim: 

5. A method of transmitting a program associated with at least one package of 

programs to a plurality of customers, said method comprising the steps of: 

providing a package key to each of said customers for each package obtained by 
said customer; 

identifying said packages associated with said program; 

encrypting said program to be transmitted to said customers using a 
program key; and 

transmitting said encrypted program together with package information for each 
identified package, said package information including said program key encrypted with said 
package key that is unique for said corresponding package containing said program. 

Column 8, 

Line 3 through line 12, replace claim 9 with the following claim: 

9. A method of transmitting a program associated with at least one package of 

programs to a plurality of customers, said method comprising the steps of: 

providing a package key to each of said customers for each package obtained by 
eac h of said customers; 

encrypting said program using a program key; and 

transmitting said program key with said encrypted program to said customers, 
said transmitted program key encrypted with said package key that is unique for said 
corresponding package containing said program. 
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UNITED STATES PATENT AND TRADEMARK OFFICE 

CERTIFICATE OF CORRECTION 



PATENT NO. : 6,073,122 Page 2 of 3 

DATED : June 6, 2000 

INVENTOR(S) :AvishaiWool 



It is certified that error appears in the above-identified patent and that said Letters Patent is 
hereby corrected as shown below: 



Column 8 (cont'd! 

Line 25 through line 37, replace claim 14 with the following claim: 

14. A method for decoding an encrypted program associated with a package of 

programs, said method comprising the steps of: 

receiving said encrypted program together with package information, said 
package information including a program key encrypted with a package key, said program key 
being used by a provider of said program to encrypt said program; 

retrieving a package key corresponding to said package; 

decrypting said package information using said retrieved package key that is 
unique for said corresponding package containing said program to obtain said program 
key; and 

decrypting said encrypted program using said program key. 

Column 8, line 57 through Column 9, line 2, 
Replace claim 21 with the following claim: 

21 . A method of receiving an encrypted program having restricted access, said 

method comprising the steps of: 

storing a package key corresponding to each package of said programs which 
said customer is entitled to; . 

receiving said encrypted program together with package information, said 
package information including a program key encrypted with said package key that is unique 
for said corresponding package containing said program, said program key being used by a 
provider of said program to encrypt said program; 

decrypting said package information using said retrieved package key to obtain 
program key; and 

decrypting said encrypted program using said program key. 

Column 9, line 17 through Column 10, line 6, 
Replace claim 27 with the following claim: 

27. An article of manufacture comprising: 

a computer readable medium having computer readable code means embodied 
thereon, said computer readable program code means comprising: 

a step to identify one or more packages associated with a program to be 
transmitted, each of said packages having an associated package key; 

a step to encrypt said program to be transmitted to a plurality of customers using 
a program key; and 

a step to transmit said encrypted program together with package information for 
each identified package, said package information including said program key encrypted with 
said package key that is unique for said corresponding package containing said program. 
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UNITED STATES PATENT AND TRADEMARK OFFICE 

CERTIFICATE OF CORRECTION 



PATENT NO. : 6,073,122 Page 3 of 3 

DATED : June 6, 2000 

INVENTOR(S) :AvishaiWool 



It is certified that error appears in the above- identified patent and that said Letters Patent is 
hereby corrected as shown below: 



Column 10, 

Line 7 through Line 21, replace claim 28 with the following claim: 

28. An article of manufacture comprising: 

a computer readable medium having computer readable code means embodied 
thereon, said computer readable program code means comprising: 

a step to receive an encrypted program together with package information, said 
package information including a program key encrypted with a package key, said program key 
being used to encrypt said program; 

a step to retrieve said package key corresponding to a package to which said 
encrypted program belongs; 

a step to decrypt said package information using said retrieved package key that 
is unique for said corresponding package containing said program to obtain said program key; 
and 

a step to decrypt said encrypted program using said program key. 
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